Lucene search
K

77 matches found

Tenable Nessus
Tenable Nessus
added 2024/05/09 12:0 a.m.34 views

EulerOS 2.0 SP10 : shim (EulerOS-SA-2024-1602)

According to the versions of the shim package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A remote code execution vulnerability was found in Shim. The Shim boot support trusts attacker-controlled values when parsing an HTTP response. Thi...

8.3CVSS7.7AI score0.04852EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/05/09 12:0 a.m.38 views

EulerOS 2.0 SP10 : shim (EulerOS-SA-2024-1579)

According to the versions of the shim packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A remote code execution vulnerability was found in Shim. The Shim boot support trusts attacker-controlled values when parsing an HTTP response. Th...

8.3CVSS7.7AI score0.04852EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2024/04/23 1:45 a.m.3 views

SUSE CVE-2023-40551

A flaw was found in the MZ binary format in Shim. An out-of-bounds read may occur, leading to a crash or possible exposure of sensitive data during the system's boot phase...

4.4CVSS5.4AI score0.00394EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2024/04/09 12:0 a.m.30 views

EulerOS 2.0 SP9 : shim (EulerOS-SA-2024-1497)

According to the versions of the shim packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A remote code execution vulnerability was found in Shim. The Shim boot support trusts attacker-controlled values when parsing an HTTP response. Th...

8.3CVSS7.7AI score0.04852EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/04/08 12:0 a.m.35 views

EulerOS 2.0 SP9 : shim (EulerOS-SA-2024-1518)

According to the versions of the shim package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A remote code execution vulnerability was found in Shim. The Shim boot support trusts attacker-controlled values when parsing an HTTP response. Thi...

8.3CVSS7.7AI score0.04852EPSS
Exploits0References3
OSV
OSV
added 2024/03/06 11:4 a.m.32 views

BIT-PYTHON-2022-48564

readints in plistlib.py in Python through 3.9.1 is vulnerable to a potential DoS attack via CPU and RAM exhaustion when processing malformed Apple Property List files in binary format...

6.5CVSS6.5AI score0.01447EPSS
Exploits1References4
OSV
OSV
added 2024/02/02 11:6 a.m.5 views

OESA-2024-1118 shim security update

Initial UEFI bootloader that handles chaining to a trusted full \ bootloader under secure boot environments. Security Fixes: A remote code execution vulnerability was found in Shim. The Shim boot support trusts attacker-controlled values when parsing an HTTP response. This flaw allows an attacker...

8.3CVSS8.6AI score0.04852EPSS
Exploits0References6
OSV
OSV
added 2024/02/02 11:6 a.m.3 views

OESA-2024-1115 shim security update

Initial UEFI bootloader that handles chaining to a trusted full \ bootloader under secure boot environments. Security Fixes: A remote code execution vulnerability was found in Shim. The Shim boot support trusts attacker-controlled values when parsing an HTTP response. This flaw allows an attacker...

8.3CVSS8.1AI score0.04852EPSS
Exploits0References3
OSV
OSV
added 2024/02/02 11:6 a.m.5 views

OESA-2024-1120 shim security update

Initial UEFI bootloader that handles chaining to a trusted full \ bootloader under secure boot environments. Security Fixes: A remote code execution vulnerability was found in Shim. The Shim boot support trusts attacker-controlled values when parsing an HTTP response. This flaw allows an attacker...

8.3CVSS8.6AI score0.04852EPSS
Exploits0References6
OSV
OSV
added 2024/01/29 5:15 p.m.10 views

AZL-35258 CVE-2023-40551 affecting package shim for versions less than 15.8-3

A flaw was found in the MZ binary format in Shim. An out-of-bounds read may occur, leading to a crash or possible exposure of sensitive data during the system's boot phase...

5.1CVSS6.7AI score0.00394EPSS
Exploits0References1
OSV
OSV
added 2024/01/29 4:46 p.m.29 views

CVE-2023-40551 Shim: out of bounds read when parsing mz binaries

A flaw was found in the MZ binary format in Shim. An out-of-bounds read may occur, leading to a crash or possible exposure of sensitive data during the system's boot phase...

5.1CVSS6.9AI score0.00394EPSS
Exploits0References15
Vulnrichment
Vulnrichment
added 2024/01/29 4:46 p.m.24 views

CVE-2023-40551 Shim: out of bounds read when parsing mz binaries

A flaw was found in the MZ binary format in Shim. An out-of-bounds read may occur, leading to a crash or possible exposure of sensitive data during the system's boot phase...

5.1CVSS6.4AI score0.00394EPSS
Exploits0References11
CVE
CVE
added 2024/01/29 4:46 p.m.203 views

CVE-2023-40551

CVE-2023-40551 affects the Shim bootloader (MZ binary format) with an out-of-bounds read that can crash the boot process or expose data. Connected advisories confirm this issue across shim-related deployments and list fixes: Debian LTS advisory for shim up to 15.8-1/15.8-1~deb10u1 and IBM securit...

5.1CVSS7AI score0.00394EPSS
Exploits0References12Affected Software1
Debian CVE
Debian CVE
added 2024/01/29 4:46 p.m.29 views

CVE-2023-40551

A flaw was found in the MZ binary format in Shim. An out-of-bounds read may occur, leading to a crash or possible exposure of sensitive data during the system's boot phase...

5.1CVSS6.7AI score0.00394EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2024/01/25 5:18 p.m.44 views

CVE-2023-40551

A flaw was found in the MZ binary format in Shim. An out-of-bounds read may occur, leading to a crash or possible exposure of sensitive data during the system's boot phase...

5.1CVSS6.2AI score0.00394EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2024/01/23 12:0 a.m.57 views

CVE-2023-40551

A flaw was found in the MZ binary format in Shim. An out-of-bounds read may occur, leading to a crash or possible exposure of sensitive data during the system's boot phase...

5.1CVSS6.9AI score0.00394EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/01/23 12:0 a.m.3 views

PT-2024-2765 · Shim +6 · Shim +6

Name of the Vulnerable Software and Affected Versions: Shim affected versions not specified Description: A flaw was found in the MZ binary format in Shim, which is related to an out-of-bounds read. This issue may cause a crash or potentially expose sensitive data during the system's boot phase...

8.3CVSS6.7AI score0.04852EPSS
Exploits2References123
The Hacker News
The Hacker News
added 2024/01/22 3:40 a.m.60 views

Apache ActiveMQ Flaw Exploited in New Godzilla Web Shell Attacks

Cybersecurity researchers are warning of a "notable increase" in threat actor activity actively exploiting a now-patched flaw in Apache ActiveMQ to deliver the Godzilla web shell on compromised hosts. "The web shells are concealed within an unknown binary format and are designed to evade security...

10CVSS8.2AI score0.99654EPSS
Exploits31
Tenable Nessus
Tenable Nessus
added 2024/01/10 12:0 a.m.52 views

RHEL 8 : python3 (RHSA-2024:0114)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:0114 advisory. Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level...

7.5CVSS7.5AI score0.0177EPSS
Exploits2References8
NVD
NVD
added 2023/08/22 7:16 p.m.37 views

CVE-2022-48564

readints in plistlib.py in Python through 3.9.1 is vulnerable to a potential DoS attack via CPU and RAM exhaustion when processing malformed Apple Property List files in binary format...

6.5CVSS6.6AI score0.01447EPSS
Exploits1References3
Rows per page
Query Builder